CVE-2012-4429 — Sensitive Information Exposure in King Vino

CWE-200 — Sensitive Information Exposure9 documents8 sources

Severity

5.0MEDIUMNVD

EPSS

0.6%

top 30.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

David King Vino

Timeline

PublishedOct 1

Latest updateMay 17

Description

Vino 2.28, 2.32, 3.4.2, and earlier allows remote attackers to read clipboard activity by listening on TCP port 5900.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶Debiandavid_king/vino< 3.8.1-1+1

▶NVDdavid_king/vino3.4.2+106

🔴Vulnerability Details

GHSA

GHSA-9338-252x-62pc: Vino 2↗2022-05-17

▶

CVEList

CVE-2012-4429: Vino 2↗2012-10-01

▶

OSV

CVE-2012-4429: Vino 2↗2012-10-01

▶

📋Vendor Advisories

Ubuntu

Vino vulnerability↗2013-01-22

▶

Red Hat

vino: information leak and authentication bypass↗2012-06-20

▶

Debian

CVE-2012-4429: vino - Vino 2.28, 2.32, 3.4.2, and earlier allows remote attackers to read clipboard ac...↗2012

▶

💬Community

Bugzilla

CVE-2012-4429 vino: information leak and authentication bypass↗2012-09-13

▶

Bugzilla

CVE-2012-4429 vino: information leak and authentication bypass [fedora-18]↗2012-09-13

▶